JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.206.80.178

20.206.80.178 was found in our database!

This IP was reported 352 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.206.80.178

Whois 20.206.80.178

IP Abuse Reports for 20.206.80.178:

This IP address has been reported a total of 352 times from 289 distinct sources. 20.206.80.178 was first reported on May 31st 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 instant	2026-05-31 10:59:20 (4 days ago)	31.05.2026 10:59:20 Web shell application scan (xx.php\|w.php\|xw.php\|s.php)	Hacking Web App Attack
🇫🇷 masterguru	2026-05-31 10:57:32 (4 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.206.80.178 (BR/Brazil/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.206.80.178 (BR/Brazil/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇪🇸 alferez	2026-05-31 10:57:19 (4 days ago)	Searching hacked php files	Hacking Exploited Host Web App Attack
🇺🇦 URAN Publishing Service	2026-05-31 10:56:37 (4 days ago)	20.206.80.178 - - [31/May/2026:13:56:09 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.206.80.178 - - [31/May/2026:13:56:09 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 3298 "-" "-" 20.206.80.178 - - [31/May/2026:13:56:36 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 712 "-" "-" ... show less	Web App Attack
🇺🇸 Lee Daniel	2026-05-31 10:56:02 (4 days ago)	20.206.80.178 - - [31/May/2026:06:56:00 -0400] "GET /waq.php HTTP/1.1" 404 27303 "-" "-" 20.206.80.1 ... show more 20.206.80.178 - - [31/May/2026:06:56:00 -0400] "GET /waq.php HTTP/1.1" 404 27303 "-" "-" 20.206.80.178 - - [31/May/2026:06:56:01 -0400] "GET /garcoy.php HTTP/1.1" 404 27309 "-" "-" 20.206.80.178 - - [31/May/2026:06:56:01 -0400] "GET /sf.php HTTP/1.1" 404 27417 "-" "-" 20.206.80.178 - - [31/May/2026:06:56:01 -0400] "GET /av.php HTTP/1.1" 404 27417 "-" "-" 20.206.80.178 - - [31/May/2026:06:56:02 -0400] "GET /asd67.php HTTP/1.1" 404 27307 "-" "-" ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇨🇭 ALPHANET	2026-05-31 10:55:50 (4 days ago)	web exploits	Hacking Exploited Host Web App Attack
🇫🇮 inlink.ltd	2026-05-31 10:55:47 (4 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇫🇷 Lunix	2026-05-31 10:55:15 (4 days ago)		Brute-Force Web App Attack
🇦🇺 aranguren.org	2026-05-31 10:54:51 (4 days ago)	20.206.80.178 - - [31/May/2026:20:54:49 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.206.80.178 - - [31/May/2026:20:54:49 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 989 "-" "-" 20.206.80.178 - - [31/May/2026:20:54:50 +1000] "GET /md5.php HTTP/1.1" 404 16 "-" "-" 20.206.80.178 - - [31/May/2026:20:54:50 +1000] "GET /lock360.php HTTP/1.1" 404 16 "-" "-" 20.206.80.178 - - [31/May/2026:20:54:50 +1000] "GET /waq.php HTTP/1.1" 404 16 "-" "-" 20.206.80.178 - - [31/May/2026:20:54:51 +1000] "GET /garcoy.php HTTP/1.1" 404 16 "-" "-" 20.206.80.178 - - [31/May/2026:20:54:51 +1000] "GET /sf.php HTTP/1.1" 404 16 "-" "-" ... show less	Bad Web Bot
Anonymous	2026-05-31 10:51:02 (4 days ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇩🇪 BlueWire Hosting	2026-05-31 10:41:01 (4 days ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
Anonymous	2026-05-31 10:40:03 (4 days ago)	\| [Dangerous/Brazil] Aggressive IP 20.206.80.178 (~30 hits). Type: DoS Defender- Web server 400 erro ... show more \| [Dangerous/Brazil] Aggressive IP 20.206.80.178 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
Anonymous	2026-05-31 10:39:48 (4 days ago)	Aggressive web scan	Web App Attack
🇫🇷 masterguru	2026-05-31 10:38:37 (4 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.206.80.178 (BR/Brazil/-): 2 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.206.80.178 (BR/Brazil/-): 2 in the last 3600 secs (0-193) show less	Hacking
🇩🇪 Nightreaver	2026-05-31 10:36:48 (4 days ago)	20.206.80.178 - - [31/May/2026:12:36:46 0200] "GET /waq.php HTTP/1.1" 404 468 "-" "-" 20.206.80.178 ... show more 20.206.80.178 - - [31/May/2026:12:36:46 0200] "GET /waq.php HTTP/1.1" 404 468 "-" "-" 20.206.80.178 - - [31/May/2026:12:36:46 0200] "GET /garcoy.php HTTP/1.1" 404 468 "-" "-" 20.206.80.178 - - [31/May/2026:12:36:47 0200] "GET /sf.php HTTP/1.1" 404 468 "-" "-" 20.206.80.178 - - [31/May/2026:12:36:47 0200] "GET /av.php HTTP/1.1" 404 468 "-" "-" 20.206.80.178 - - [31/May/2026:12:36:47 0200] "GET /asd67.php HTTP/1.1" 404 468 "-" "-"[...] show less	Bad Web Bot Web App Attack

Showing 331 to 345 of 352 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.8.120.90

🇨🇳 182.90.248.108

🇺🇸 172.217.46.244

🇺🇸 162.158.154.196

🇨🇳 115.190.150.8

🇮🇳 66.116.233.132

🇬🇧 193.163.125.253

🇨🇴 190.60.44.91

🇨🇱 186.103.169.12

🇧🇴 181.188.172.6

🇫🇷 144.91.70.229

🇮🇳 143.110.176.190

🇰🇷 120.29.140.188

🇮🇩 114.141.59.195

🇨🇳 110.249.201.130

🇺🇸 76.79.213.69

🇩🇪 52.58.216.35

🇨🇳 27.24.141.147

🇺🇸 20.168.120.149

🇺🇸 18.222.41.121